diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
index 7950f6b..eaefe0c 100644
--- a/.github/workflows/ci.yml
+++ b/.github/workflows/ci.yml
@@ -74,7 +74,7 @@ jobs:
           provenance: ${{ github.event_name != 'pull_request' }}
 
       - name: Run Grype vulnerability scanner
-        uses: anchore/scan-action@896d5f410043987c8fe18f60d91bf199e436840c # v3.3.8
+        uses: anchore/scan-action@1d59d90b47fc11ff8f97822da6c25eec888f81cf # v3.5.0
         continue-on-error: true
         id: scan
         with: